Install RNA™ Virtual Scanner Appliance

The virtual scanner can be installed on any computer (host) with the required resources. The virtual scanner is intended to be hosted on a client’s VMware, Hyper-V or VirtualBox virtualization platform. Amazon Web Services (AWS) AMI is also supported.

NOTE: If your organization does not have one of the recommended virtualization platforms such as Hyper-V, VMware or VirtualBox

Install and activate the RNA virtual scanner appliance by performing the following steps (see below for detailed instructions):

  1. Download the RNA virtual scanner appliance.
  2. Deploy the virtual scanner on your virtualization environment.
  3. Configure your network RNA profile for a static IP (if necessary).
  4. Activate the virtual scanner appliance.

Host System Requirements

This section describes the requirements necessary to host the RNA virtual scanner appliance image.

Supported Virtualization Platforms

Host Operating System Version Virtualization Platform (Hypervisor) Virtual Scanner Appliance File
Windows Server 2012 and later Hyper-V Role Microsoft Hyper-V (VHDX)
VMware ESXi Server 5.0 and later

Native

VMware ESXi (OVA)
Windows Desktop / Laptop 8.1 and later
VMware Workstation 10.x and later
Oracle VirtualBox 4.2 and later
VMware ESXi (OVA)
macOS Big Sur and later
VMware Fusion 6.x and later
Oracle VirtualBox 4.3 and later
VMware ESXi (OVA)
Linux Ubuntu 20.04 Desktop Oracle VirtualBox 4.3 and later VMware ESXi (OVA)

Minimum Hardware Requirements

Component Requirement
VM Hardware Version

VMware Virtual Machine Hardware Version 7.0 or Later
Hyper-V Generation 1

CPU Intel or AMD x86 processors, 2 or 4 CPUs, 2 GHz or higher
Memory 4 GB RAM (Minimum)
Hard Disk 60 GB free space
BIOS Virtualization Technology

BIOS Virtualization Technology must be enabled. By default, this setting is not enabled on most laptops.

Peer Images Other VMware, Hyper-V or VirtualBox images may run alongside the RNA on the host system as long as two processors, 2GB of RAM, and 10Mbps of bandwidth are available to the RNA at all times.
Network Location

For optimal results, the virtual scanner should be hosted on a computer near the internet gateway (the router with one side connected to your private network, and the other side connected to the internet). To protect from outside access, the host should be located on the protected side of the perimeter security device (a network component that monitors ports and accepts or rejects communications through those ports).

TIP: It is recommended that the virtual scanner be hosted on a machine in a controlled access location due to the sensitivity of the data collected.
Physical Connections & Ports

Host system network configuration should be a Cat 5 or above network cable with a network connection speed (throughput) of 100 MB or above.

The Virtual Scanner establishes a secure connection with the Fortra Secure Network Operation Center (SNOC) over Port 443 (HTTPS) or Port 22 (SSH), which allows internal testing on your network.
NOTE: If your location uses an application-based proxy (a proxy server, firewall or a perimeter security device that filters and inspects internet traffic) and you experience difficulty connecting to Fortra for activation, call Technical Support.

Other considerations for macOS: The virtual machine’s available bandwidth is limited by default. If this limitation is exceeded upon initiating a scan, a dialog box displays requesting permission to grant more bandwidth throughput to the virtual machine. Accept the request for the virtual scanner to function optimally.

Download RNA

The following instructions describe how to download the RNA virtual scanner appliance file.

To download the virtual scanner appliance:

  1. Open Fortra VM.
  2. From the navigation menu, select Scan Settings > Scanners.
  3. Select the Appliance Tokens tab.

  4. Under Virtual Scanners Download select the appropriate file type:
    • OVA image for VMware or VirtualBox
    • Hyper-V image for Windows Server Hyper-V role
    • AMI for Amazon Web Services (AWS). This download will redirect to the AWS Marketplace to subscribe to the AMI and add to your AWS account.
  5. Save the VHDX or OVA file to your local drive.

Deploy RNA

The following instructions describe how to deploy the RNA virtual scanner appliance on your virtualization environment.

Select the applicable virtualization platform:

  1. Log in to your VMware ESX Server using the vSphere web client (or VMware Player, Workstation, or Fusion application).
  2. From the vSphere client window, select File > Deploy OVF Template.
  3. On the Source screen, browse to the downloaded FrontlineVirtualRNA.ova file. Select Next.
  4. On the OVF Template Details screen, select Next.
  5. On the Name and Location screen, create a unique name for the scanner (optional). If applicable, select the folder location or data-center for the virtual scanner. Select Next.

    6. If the vSphere Client is connected directly to an ESX/ESXi host the option to select the folder location does not appear. If connected directly to a ESX/ESXi host, skip to the Storage screen.

  6. If applicable, on the Host / Cluster screen choose the host or cluster for the virtual scanner. Select Next.

    7. In order to be scanned, the chosen host or cluster must have access to the network.

  7. If applicable, on the Specific Host screen choose the specific host for the virtual scanner. Select Next.

    8. This page appears only if the destination is a resource pool associated with a cluster with DRS disabled or in manual mode. If not applicable, skip to the Storage screen.

  8. On the Storage screen, select where to store the files for the deployed virtual scanner. Select Next.
    9. NOTE: If no external storage is configured, only local storage will be available.
  9. On the Disk Format screen, select the required format for virtual machines. Select Next.

    10. Thin provisioning lets you create sparse files with blocks that are allocated upon first access, which allows the datastore to be over-provisioned. The sparse files can continue growing and fill the datastore. If the datastore runs out of disk space while the virtual scanner is running, it can cause the virtual scanner to stop functioning.

  10. On the Network Mapping screen, choose the destination network to be scanned. Select Next.
    11. NOTE: If you are using VMware Fusion or Workstation, verify that the network connection type is set to Bridged.
  11. On the Ready to Complete screen, select Finish.
  12. On the vSphere client window, right-click the virtual scanner on the left panel, and select Power > Power On.
  13. Right-click the scanner again, and select Open Console.
    14. NOTE: If prompted with a GNU Grub screen, click within the console and select Enter to select the default option.

The RNA virtual scanner appliance will boot into a console. The scanner may take a few minutes to start.

If Dynamic Host Configuration Protocol (DHCP) is in use on the network, the scanner should automatically connect to the network and the System Status: RNA Link field will indicate the scanner status. Online displays after the RNA is successfully activated and able to connect with Fortra VM, prior to successful activation the status will display as Offline. See the Internet Link field to determine general internet connectivity. If the virtual scanner is unable to use DHCP to connect, create a static IP network profile.

NOTE: If you need to create a network profile with a static IP, continue to Configure Network Profile. If the scanner is online, skip to Activate RNA.
  1. Double-click the downloaded FrontlineVirtualRNA.ova file to open it.
  2. The first time this file is invoked, an Import Virtual Appliance window displays. Click Import.
    The FrontlineVirtualRNA scanner will appear, powered off, in the left pane of the Oracle VM VirtualBox Manager.
  3. Select the virtual scanner and click Start to power it on. The RNA virtual scanner appliance will boot into a console. The scanner may take a few minutes to start.
    • Click on the new VM and go to Settings > System. Under the Extended Features section, ensure the check box for Enable EFI (special OSes only) is checked. Two banner messages will display regarding keyboard and mouse integration. Dismiss these messages by clicking the .
    4. IMPORTANT:

    If the VM displays an error reading " FATAL: No bootable medium found! System halted.", you must click on the new VM and navigate to Settings > System. Under the Extended Features section, ensure the check box for Enable EFI (special OSes only) is checked.

    If the RNA starts up and displays a login prompt instead of the standard RNA interface, perform the following:

    • First attempt to cycle through different ttys. The GUI is typically on ttys2, use CTRL + ALT+ F2 if the login prompt is on tty1.
    • If that isn't successful, power off the VM and navigate to Settings > Display . Under the Graphics Controller, VBoxVGA is likely selected by default. Change the selection to VMSVGA and power on the RNA to see if the RNA GUI is brought up. If not, power off the RNA and try VBoxSVGA, power it on and see if the issue of the GUI display is resolved.

  1. Click within the virtual scanner display in order to activate mouse capturing. Select Capture.

If Dynamic Host Configuration Protocol (DHCP) is in use on the network, the scanner should automatically connect to the network and the System Status: RNA Link field will indicate the scanner status. Online displays after the RNA is successfully activated and able to connect with Fortra VM, prior to successful activation the status will display as Offline. See the Internet Link field to determine general internet connectivity. If the virtual scanner is unable to use DHCP to connect, create a static IP network profile.

NOTE: If you need to create a network profile with a static IP, continue with Section 3 - Configure Network Profile. If the scanner is online, skip to Section 4 - Activate RNA.
  1. Log in to your Hyper-V Server and start the Hyper-V Manager.
  2. From the Actions panel, select New > Virtual Machine.
  3. Choose a name for your virtual machine (e.g., FrontlineVirtualRNA). Select Next.
  4. Choose Generation 1 for the virtual machine generation. Select Next.
  5. Enter 4096 MB for Start up memory. Select Next.
  6. Select the host network adapter (virtual switch) to be used by the virtual scanner to access the network. Select Next.
    7. NOTE: If you have not created a virtual switch, you must do so in order to give the virtual scanner access to the network.
  7. Select Use an existing virtual hard disk and browse to the VHDX file. Select Next.
  8. Then select Finish.
  9. Select the virtual machine.
  10. On the Action panel, select Start. Then choose Connect.

The RNA virtual scanner appliance will boot into a console. The scanner may take a few minutes to start.

NOTE: If you need to create a network profile with a static IP, continue with Configure Network Profile.
  1. Click within the virtual scanner display in order to activate mouse capturing.
  2. Select Capture.
NOTE: Specific instructions for launching an AMI RNA instance can be found at Install and Set Up AWS AMI Scanning.
NOTE: Specific instructions for Azure can be found at Set Up An Azure Scanner.
NOTE: Do not clone the vRNA before, or after, activating it. Cloning the vRNA may prevent successful communication between the vRNA and the Fortra VM platform.

Configure Network Profile

The following instructions describe how to configure the virtual scanner to use a static IP.

NOTE: If Dynamic Host Configuration Protocol (DHCP) is in use on your network, the RNA should automatically connect to the network and theRNA Field will indicate the scanner is "Online". If the virtual scanner is unable to use DHCP to connect, create a static IP network profile. Perform this step ONLY if a network profile with a static IP needs to be created. If the scanner is already online, proceed to the next step: Activate RNA.

Configure The Virtual Scanner To Use A Static IP as indicated by the System Status: Internet Link field:

  1. From the RNA console, click Edit under Network Status.
  2. From the drop-down, select Static.
  3. Enter the following information. Check with your tech support for this information.
    • IP Address: The IP address for the virtual scanner
    • Netmask: The subnet mask for the virtual scanner
    • Gateway: The IP address for the gateway device available to the virtual scanner
    • DNS Server: The IP address for the DNS server available to the virtual scanner
  4. Click Save.

The virtual scanner should now connect to the network, as indicated by the System Status: RNA Link field. Verify the virtual scanner's connectivity using the "status" command because it is more exhaustive than the Online / Offline field after an IP change.

NOTE: If the scanner is still offline, call Technical Support.

Activate RNA

To activate your virtual scanner:

  1. Once the scanner has network access, leave the RNA virtual scanner appliance console running.
  2. Open the Fortra VM web interface.
  3. From the Fortra VM navigation menu, select Scan Settings > Scanners.
  4. Select the Appliance Tokens tab. The Appliance Tokens page will indicate the total number of activations available.
    5. NOTE: If you do not have any activations available, call Technical Support.
  5. Select New Token to generate a new activation token.
  6. On the RNA virtual scanner appliance console, enter the token in the Please enter your activation key field.
  7. Select Activate RNA.
  1. Once activated, you will see the message, "Activation Successful: This device is ready to use." You are now ready to run your first scan.
    See related: Create and Run Scans.

Refer to RNA™ Troubleshooting for additional guidance and support.

NOTE: If the virtual RNA is installed on a workstation, the workstation will need to remain powered on and have network connectivity for any scans to run.

For information regarding connectivity issues and troubleshooting, see RNA™ Troubleshooting